Oval Definition:	oval:org.opensuse.security:def:20143616
Revision Date: 2022-06-30 Version: 1 Title: CVE-2014-3616 Description: nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse a cached SSL session for an unrelated context, which allows remote attackers with certain privileges to conduct "virtual host confusion" attacks. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-3616 Mitre CVE-2014-3616 SUSE CVE-2014-3616 SUSE-SU-2014:1286-1 SUSE-SU-2014:1286-1 Platform(s): openSUSE Tumbleweed SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND nginx-1.14.0-1 is installed Definition Synopsis openSUSE Tumbleweed is installed AND Package Information nginx-1.11.4-2.5 is installed OR vim-plugin-nginx-1.11.4-2.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND nginx-1.14.0-1.14 is installed
BACK